Privia Health, LLC

Privacy Policy

Date Last Revised: March 18, 2013

We take privacy and security seriously at Privia Health. We are committed to maintaining the confidentiality, privacy, and security of all user and visitor personal information. The Privacy Policy describes how Privia Health collects, uses, and protects the personal information you provide to us on www.priviahealth.com and other associated corporate sites (the “Site”), sites of affiliated doctors, telephone, mail, and other communication tools. The Policy also describes the choices available to you regarding Privia Health’s use of your personal information and the steps you can take to access, edit, or delete this information.

  1. Security of your Personal Health Information is our top priority
  2. How we secure and protect your information
  3. How we use your non-Personal Health Information
  4. Your online navigation activity is only used to improve your experience
  5. We limit sharing your information with third parties
  6. You can easily access, update, and delete your personal information
  7. We post updates on our website when there are changes to our Privacy Policy
  8. Contact us if you have any questions or concerns

1. Security of your Personal Health Information is our top priority

Privia Health will never disclose your personally identifiable “protected health information” (“PHI”) (as that term is defined in the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations) without your direct authorization.

If you join Privia Health, you will provide limited authorization to Privia Health and its employees, contractors, and authorized partners for the use of your PHI. This authorization will be governed by the terms of your Membership Agreement, and by any associated “Authorizations for Release of Health Information” which you may provide Privia Health. We will not share your PHI for any other purposes than normal, routine health care operations.

You are responsible for ensuring the accuracy of your Personally Identifiable Information and Personal Health Information you submit to Privia Health. Inaccurate information will affect the quality of information you receive from us when using our site, services, and tools, and our ability to contact you as described in this Privacy Policy.

2. How we secure and protect your information

Providing security for personal information is a top priority of Privia Health. We spend a great deal of time, attention, and resources to help protect your privacy. Here are some of the security procedures we employ:

  • We use one of the highest standards of Secure Socket Layer (SSL) encryption technology in transmitting Personally Identifiable Information to our servers with a 256 Bit Extended Validation security certificate.
  • We require both a username and password for users to access their information.
  • Our servers are located in state-of-the-art secure data centers designed to protect some of the country’s most sensitive data, with professional security measures such as:
    • 24×7×365 security guards
    • 24×7×365 interior and exterior video surveillance
    • 24×7×365 network operations monitoring center and on-site network engineering support
    • Biometric security access through hand scanners
    • Servers located in locked cages
    • Hurricane proof buildings
    • Redundant electrical systems and redundant emergency power generators
    • Redundant HVAC systems
  • We use firewalls to protect the information held in our servers.
  • We back-up our systems and data regularly.
  • We maintain audit trails of all activity on our servers.
  • We provide a secure messaging tool so that your communications with your health team are sent through a secure, encrypted connection.
  • We closely monitor the limited number of Privia Health employees who have potential access to your Personally Identifiable Information.
  • We require all Privia Health employees to undergo privacy training, to abide by our Privacy Policy, and to be subject to disciplinary action if they violate it.

Despite Privia Health’s efforts to protect your Personally Identifiable Information and Personal Health Information, there is always some risk that an unauthorized third party may find a way around our security systems or that transmissions of your information over the Internet may be intercepted. You should always use caution when submitting personal information online.

3. How we use your non-personal health information

We collect non-PHI Personally Identifiable Information, like your name, email address, date of birth, zip code, and any other information you provide to us when you fill out a form on our Site, or register as a member of Privia Health. We use the Personally Identifiable Information that you provide to us to respond to your questions and inquiries, provide the specific services you select, call and send you emails about our services, make available valuable partner offers, provide updates, and inform you of significant changes to this Privacy Policy. We work with carefully selected business partners so that you may receive valuable offers for their products and services. We use non-PHI Personally Identifiable Information to help make these offers relevant and valuable to you. You can inform us not to send you these offers.

4. Your online navigation activity is only used to improve your experience

When you visit our Site, we may collect certain non-personally identifiable information, such as your computer’s Internet protocol address, type of browser, and pages viewed. We use this information to understand how visitors navigate through our Sites and to enhance visitor experience.

If you use our Site without registering or completing any response forms, we will only collect Non-Personal Information through the use of Cookies or Web Beacons. “Cookies” are small text files that a website stores on your computer’s hard drive in order to collect information about your activities on the site or to make it easier to use certain site functions. You can change your browser settings if you want to be notified when a site collects cookies, or to prevent sites from collecting cookies.

We use a third party web analytics service provider that uses cookies and web beacons to help us analyze how users navigate our Site and the effectiveness of our marketing. The information generated by the cookie about your use of this Site will be transmitted to and stored by this service provider. They will use this information for the purpose of evaluating and reporting on your use of our Site. The information collected by our service provider is not personally identifiable.

5. We limit sharing your information with third parties

Privia Health uses third party vendors and hosting partners to provide the necessary hardware, software, networking, storage, printing, packaging, mailing, customer service tools, and related technology to run our services. If we provide personal information to third parties, we only provide the personal information needed to deliver the service. They are required to maintain high standards of confidentiality and security when using personal information, and are explicitly prohibited from using that information for any other purpose.

We will also share your personal information if we are required to do so by law, or if we believe that doing so is necessary in order to conform to the law, cooperate with law enforcement agencies, comply with legal process served on Privia Health, or otherwise protect Privia Health’s legal rights.

Our websites may include links to other Web sites whose privacy practices may differ from those of Privia Health. If you submit personal information to any of those sites, your information is subject to their privacy statements. Privia Health’s privacy policy does not apply to information you may submit to those sites. We encourage you to carefully read the privacy statement of any website you visit.

6. You can easily access, update, and delete your personal information

You are in control of your information. Privia Health’s personal health record tools allow you to update or review information that is submitted by, but not limited to, you, your doctor, your doctor’s electronic medical record, or Privia Health.

If you terminate your membership with Privia Health and want access to your personal information, we will provide you reasonable access to your personally identifiable information, at no cost to you, within 30 days of your access request. If we cannot provide access within the 30-day period, we will tell you when we will provide access. In the unlikely event that we cannot provide you access to this information, we will explain why we cannot do so.

If you terminate your membership with Privia Health and ask to delete your information, we will attempt to delete your profile and associated PHI. We may store your information in an inactive back-up medium for a period of not less than six (6) years, based on recommended guidelines for medical providers. If you specifically direct us to erase you record from our back-up medium, we will attempt to do so to the point it is reasonable and technically feasible. Note that it’s not technically feasible for us to remove from our servers every record of the information.

To request access to or deletion of your personally identifying information, contact us by email at support@priviamedicalgroup.com or by writing us at the following address:

Privia Health
950 N Glebe Rd, Suite 4000
Arlington, VA 22203

7. We post updates on our website when there are changes to our Privacy Policy

We frequently re-evaluate our privacy and security policies and procedures, and adapt to new challenges as they arise. We update this Privacy Policy to correspond with those changes, and will revise the “Date Last Revised” at the top of the Privacy Policy. For material changes that affect the personally identifying information we have collected, we will either notify you or place a prominent notice on the Site.

8. Contact us if you have any questions or concerns

If you have questions about our Privacy Policy or have any other privacy concerns, please send us an email at support@priviamedicalgroup.com or write to us at the following address:

Privia Health
950 N Glebe Rd, Suite 4000
Arlington, VA 22203

If you have technical difficulty using our websites, please contact Privia Support at support@priviamedicalgroup.com